vulnerability

Red Hat: CVE-2018-16396: Moderate: ruby security update (Multiple Advisories)

Severity
7
CVSS
(AV:N/AC:M/Au:N/C:P/I:P/A:P)
Published
Nov 16, 2018
Added
Aug 7, 2019
Modified
Jul 9, 2025

Description

An issue was discovered in Ruby before 2.3.8, 2.4.x before 2.4.5, 2.5.x before 2.5.2, and 2.6.x before 2.6.0-preview3. It does not taint strings that result from unpacking tainted strings with some formats.

Solution(s)

no-fix-redhat-rpm-packageredhat-upgrade-rubyredhat-upgrade-ruby-debuginforedhat-upgrade-ruby-develredhat-upgrade-ruby-docredhat-upgrade-ruby-irbredhat-upgrade-ruby-libsredhat-upgrade-ruby-tcltkredhat-upgrade-rubygem-bigdecimalredhat-upgrade-rubygem-io-consoleredhat-upgrade-rubygem-jsonredhat-upgrade-rubygem-minitestredhat-upgrade-rubygem-psychredhat-upgrade-rubygem-rakeredhat-upgrade-rubygem-rdocredhat-upgrade-rubygemsredhat-upgrade-rubygems-devel
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.